Data protection declaration

of General Logistics Systems Austria GmbH

We, General Logistics Systems Austria GmbH (GLS Austria), are a subsidiary of General Logistics Systems B.V., Amsterdam. GLS Austria provides reliable high class parcel services as well as express deliveries and value added logistics services.

In providing those services GLS Austria inevitably processes personal data. GLS Austria is strongly committed to protecting data and ensuring technical security of processing. Need-less to say, personal data are collected and processed exclusively in compliance with the statutory regulations. This Privacy Statement provides you with important information relating to our data processing activities. See the updated versions of this Privacy Statement on our website www.gls-group.eu . To find out more please contact us (contact data see below).

Personal Data:

Personal Data means any information relating to an identified or identifiable natural person, such as name, address, telephone number and date of birth (Art. 4 para 1 General Data Protection Regulation “GDPR”). Information which cannot be linked to an identified or identifiable natural person (e.g. number of users on a website) does not qualify as personal data.

Privacy and Security:

Under the data protection laws, one of the obligations of GLS Austria is to keep personal data private and not disclose them to a third party. All employees of GLS Austria have also signed a commitment to comply with the confidentiality obligation. Where GLS Austria employs a data processor to process personal data, we enter into processing agreements in accordance with GDPR with them. For example, GLS Austria uses a specialist IT company from GLS Group to provide technical services.

As a company which provides the public with postal services and/or is involved in providing such services, GLS Austria is under an obligation to protect postal privacy and must comply not only with GDPR and the Data Protection Act (DPA) but also with the specific data protection provisions of the Postal Market Act (PMA).

As to technical and organizational measures for the protection of personal data according to Art. 32 GDPR, GLS Austria does everything in its power to reasonably protect your personal data from loss and misuse. Personal data are processed exclusively in systems which are protected by appropriate safety precautions.

We may have to adapt our safety and data protection measures to new technology from time to time. We shall revise our information on data protection and security accordingly, so please read the updated versions of our Privacy Statement.

Your rights:

As a person whose data is processed by us you have a number of rights: You have the right of access (Art. 15 GDPR), the right to rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR) and the right to object (Art. 21 GDPR). If you have consented to the processing of your personal data, you have the right to withdraw your consent at any time. Your withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal. If you would like to exercise any of your rights listed above, please contact us (contact data see below).

If you believe that our processing of personal data relating to you infringes GDPR or generally the applicable data protection laws, please let us know. In such cases you also have the right to lodge a complaint with the Data Protection Authority (Art. 77 GDPR).

Contact data:

If you have any questions about the use of your personal data or would like to exercise any of your rights listed above, please contact us:

General Logistics Systems Austria GmbH
Traunuferstraße 105a
AT-4052 Ansfelden
phone: (+43) 05 9876 0
fax: (+43) 05 9876 1901
email: info@gls-austria.com

or our Data Protection Officer

phone: (+43) 05 9876 1260
fax: (+43) 05 9876 1902
email: dataprotection@gls-austria.com

Our processing activities:

We process personal data only on a legal basis as defined by Art. 6 GDPR (e.g. for the performance of contracts or legal obligations and for reaching legitimate purposes). Specifically, GLS Austria carries out the following data processing activities:

1) Data relating to customer, consignee and shipment

Processing

To be able to carry out the parcel delivery and perform the contract with the consigner GLS Austria needs specific customer-related data (billing data) and consignee-related data (delivery-related data). Moreover, shipment data are generated during the parcel delivery process, i.e. the interface documentation (scanning of parcels at various points in the production; shipment tracking data) and the proof of delivery. All these data are stored and processed by GLS Austria.

GLS Austria uses the personal data relating to customers, consignees and shipments exclusively for performing its contractual obligations, which constitutes the legal basis for the processing according to Art. 6 para 1 subpara b GDPR. There will be no further use of the data.

Providing information and transfers

Generally only the consigner and the consignee of a parcel have the right to be informed about the parcel. Third parties (e.g. government agencies) will obtain information from GLS Austria relating to parcels only if it is necessary for compliance with a legal obligation.

Deadlines for retention and erasure

Proofs of delivery as well as billing and delivery data are usually archived and retained for a period of seven years (§ 132 Federal Tax Code (BAO)). Archived data are securely locked away on data storage devices to which only authorized employees have access.

2) Data from email inquiries

If you contact us by email, the data we get from your inquiry, such as name, email address, other contact data and the inquiry per se, are stored and processed by us so we are able to deal with your inquiry. When we no longer need to save those data to deal with your inquiry, we delete or, where statutory retention periods are applicable, restrict the processing of those data.

If you wish to contact GLS Austria sending emails unencrypted, please note that the confidentiality of the transmitted information cannot be guaranteed. In some circumstances the content of such emails may be accessible to third parties.

3) Collection, processing and use of personal data on GLS websites

3.1) Your visit to a GLS website (log files)

Whenever you access a GLS website, data are collected and saved in a log file for the purpose of showing you our website. The collection of the data for that purpose is necessary for the operation of the website, in particular to guarantee stability and security. This is our legitimate interest in data processing, which is the legal basis of processing according to Art. 6 para 1 subpara f GDPR. In detail the following data record is saved temporarily:

- Date and time of access
- IP address or DNS name of the inquiring computer
- Accessed website (URL)
- HTTP answer code
- Operating system and version
- Browser and version

At the end of each session, the log data is deleted if technically feasible.

3.2) Cookies

What are cookies?

Cookies are small text files that are stored on your computer and enable us to analyze your use of the website. The information stored through cookies can be read from the website each time you revisit the website. Cookies are necessary for the proper functioning of all processes on the website and can make using the website easy for the user: as information such as e.g. preferred language or user name is stored in cookies at your first visit, such information doesn’t need to be entered at each further visit. Thus the website displays information tailored to your individual needs, provided that you use the same terminal.

Why GLS uses cookies

GLS Austria uses cookies to provide you with an optimal service adapted to your customer needs. Information you obtained already at your first visit is not displayed again, for example. Activities like the login and the logout process can be made easier for you, and you can find information you searched for before more quickly. Thus the website performance can be enhanced.

GLS of course also implements organizational and technical measures (Art. 32 GDPR) to protect your personal data and prevent data loss or unlawful behavior.

We use the following cookies:

• “_ga” and “_gat” for Google Analytics (see below for details)

• “glsCountryURL” for storing the country selected on gls-group.eu

How to disable cookies:

Browser settings can be adapted easily. You can also disable cookies easily. Please note that if you disable cookies, your login username and password for the protected area of the website can no longer be saved. Simple instructions on how to disable cookies in your browser:

Mozilla Firefox:

1. Open Firefox.
2. Choose “Tools”; next click “Settings” in your toolbar.
3. Select the “Privacy” tab.
4. Select for “Firefox will remember history:” “use custom settings for history”.
5. Remove the check mark for “Accept cookies” and save your preferences.

Internet Explorer:

1. Open Internet Explorer.
2. Click the “Tools” button; next click “Internet Options”.
3. Click the “Privacy” tab.
4. Under “Settings”, choose your preferred setting and then click “Apply”.

Google Chrome:

1. Open Google Chrome.
2. Select “Settings”.
3. Click “Show advanced settings”.
4. In the “Privacy” section, click the “Content settings” button.
5. In the “Cookies” section, you can disable cookies and store your preferred setting.

Safari:

1. Open Safari.
2. Click on the cogwheel icon at the top right hand corner of the menu bar; next click
“Preferences…”.
3. On the menu that pops up, choose “Preferences” again.
4. In the new window, click the “Security” tab.
5. To disable the cookies, check “Always” under “Block Cookies”.
6. If you wish to allow cookies again, check “Never”.

3.3) Google Analytics Statistics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses “cookies”.

The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the USA after anonymizing your IP address. Google will use this (anonymous) information for the purpose of evaluation of your use of the website, compiling reports on website activity for the website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. IP addresses are anonymized (IP masking) by addition of “gat._anonymizeIp();” to the Google Analytics code.

If you want no data (including the anonymized IP address) to be transferred to a Google server in the USA, you can change your preferences accordingly using the following link: http://tools.google.com/dlpage/gaoptout?hl=de

3.4) Linking to Social Media

The GLS Austria website features icons that link directly to social media where GLS Austria presents its work. For information about the use of your personal data by the social media providers please read their privacy policies.

4) Video Surveillance

GLS Austria has several video surveillance systems in operation in the repositories, designated in accordance with § 13 DPA, to protect ourselves (protecting property and employees) and exercise our responsibilities (duties to maintain traffic safety, contractual liability to customers etc.) and to prevent, control and clear up any criminal behavior. The legal ba-sis of the processing is the legitimate interest pursued by us (Art. 6 para 1 subpara f GDPR). The video tapes are erased at specified times, if technically feasible.

Last revised: 17 May 2018